Persistent login?

[Xzandro]

Hey, thank you for your work! Cookie based login definitely improves this whole process.

I have a question: I do see, that you increase the lifetime of the session cookie every time a request comes through (except for the logout endpoint), but wouldn't that still mean, that the jwt token would be invalid at some point? I think the default is 30 days and since this will not be renewed, would it mean, that the user would be forcefully logged out after 30 days at the latest, even if they do constant requests?

Is this by design or was there just no easy solution? Would be really interested in that. Thank you in advance for answering!